$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/sMh5MMoicFoZx1YeW7gQYs0aQWM.roa File: sMh5MMoicFoZx1YeW7gQYs0aQWM.roa (raw, json) Hash identifier: QIBKA77Ran/sJvVBLjcbC3y2cILvYT9tcbAPK2uE2js= Subject key identifier: B0:C8:79:30:CA:22:70:5A:19:C7:56:1E:5B:B8:10:62:CD:1A:41:63 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 0FFB Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/sMh5MMoicFoZx1YeW7gQYs0aQWM.roa Signing time: Fri 01 Sep 2023 09:37:35 +0000 ROA not before: Fri 01 Sep 2023 09:37:35 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9924 IP address blocks: 124.12.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 00:50:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4091 (0xffb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Sep 1 09:37:35 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B0C87930CA22705A19C7561E5BB81062CD1A4163 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:7a:8b:2d:f9:13:82:75:ca:94:d5:87:ab:d0: b3:9e:15:2c:87:57:8c:91:bc:43:11:79:72:36:6b: f5:a9:7f:cb:5c:08:f3:09:c1:42:d6:24:03:3c:d5: b8:9e:2d:6c:ac:ac:8e:5d:14:a5:ae:7d:2f:ff:ab: 1f:ff:07:05:1f:e4:ca:d3:1c:99:f5:4e:5e:1f:56: 4e:dd:92:97:c4:38:e4:7f:25:f5:1c:23:e0:0b:b5: 43:a4:e9:54:3a:75:b8:97:6b:e4:72:3b:61:8d:4b: 02:c3:9e:59:cf:f7:89:69:26:91:77:b7:dd:6e:85: 03:c0:a7:07:46:f3:36:74:dd:99:75:f9:6e:5c:15: 8c:4e:21:db:2e:71:62:2f:fa:69:d3:42:c6:72:aa: 56:7a:62:af:e2:ab:26:d0:cd:0c:4a:e8:60:55:4b: b0:94:2b:2a:c0:47:44:f7:ec:05:56:e2:8a:1f:2f: f1:68:35:93:c0:ab:4d:40:a3:83:c2:9d:42:63:d9: 31:1c:d8:38:73:c0:fe:4f:90:2d:95:4e:ad:f4:e9: f9:3a:fa:1d:4a:71:b7:91:e0:f7:c4:16:df:3d:07: c9:29:cd:6a:18:22:0e:df:a6:d1:e9:5a:c4:34:2e: 10:25:db:2c:17:1a:cb:62:f9:4e:f9:2e:86:80:81: b8:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:C8:79:30:CA:22:70:5A:19:C7:56:1E:5B:B8:10:62:CD:1A:41:63 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/sMh5MMoicFoZx1YeW7gQYs0aQWM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.12.0.0/16 Signature Algorithm: sha256WithRSAEncryption 75:e9:b2:f2:c9:da:c6:72:56:b6:0b:9d:8a:20:81:92:e9:39: 89:84:20:ec:ce:61:f2:8b:f3:33:ef:da:1f:b5:f0:c8:06:5e: d4:b5:cd:97:87:84:39:7b:61:2b:cb:fd:57:32:63:2c:60:b0: a6:67:e4:36:2e:1a:7b:7a:4e:1a:6b:20:36:19:ec:6c:54:69: 9e:23:27:79:91:6c:3f:a1:01:0c:92:b1:a2:33:79:30:1d:2c: da:3a:f0:c0:85:3c:d6:18:62:db:96:2d:28:bd:cc:7d:43:b3: 6c:53:99:55:85:75:15:c5:a1:98:ec:a1:30:69:e3:a6:77:2c: 82:70:8a:9f:6b:50:46:42:30:ab:31:f2:c4:5f:1a:f0:17:48: 5d:31:75:1e:80:7e:84:13:1b:ab:8d:00:63:48:a0:97:39:89: 47:f8:53:a2:b1:27:3b:93:c5:2d:93:53:75:2f:ce:2a:fb:9c: dd:32:71:c7:97:4e:bc:bd:0e:d6:f8:07:4b:57:c1:24:dc:d4: 84:35:d0:9a:f1:fd:71:6e:1b:25:28:2e:89:69:a7:44:c0:55: 64:82:cc:e5:c1:82:f9:25:ba:45:dc:58:24:15:5c:d9:21:b4: 33:41:13:66:3f:93:d8:2e:08:11:d3:cc:61:49:c0:25:84:ff: 8a:25:dc:be -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICD/swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yMzA5MDEw OTM3MzVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEIwQzg3OTMwQ0EyMjcw NUExOUM3NTYxRTVCQjgxMDYyQ0QxQTQxNjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzeost+ROCdcqU1Yer0LOeFSyHV4yRvEMReXI2a/Wpf8tcCPMJ wULWJAM81bieLWysrI5dFKWufS//qx//BwUf5MrTHJn1Tl4fVk7dkpfEOOR/JfUc I+ALtUOk6VQ6dbiXa+RyO2GNSwLDnlnP94lpJpF3t91uhQPApwdG8zZ03Zl1+W5c FYxOIdsucWIv+mnTQsZyqlZ6Yq/iqybQzQxK6GBVS7CUKyrAR0T37AVW4oofL/Fo NZPAq01Ao4PCnUJj2TEc2DhzwP5PkC2VTq306fk6+h1KcbeR4PfEFt89B8kpzWoY Ig7fptHpWsQ0LhAl2ywXGsti+U75LoaAgbh/AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUsMh5MMoicFoZx1YeW7gQYs0aQWMwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvc01oNU1Nb2ljRm9aeDFZ ZVc3Z1FZczBhUVdNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEwBQMD AHwMMA0GCSqGSIb3DQEBCwUAA4IBAQB16bLyydrGcla2C52KIIGS6TmJhCDszmHy i/Mz79oftfDIBl7Utc2Xh4Q5e2Ery/1XMmMsYLCmZ+Q2Lhp7ek4aayA2GexsVGme Iyd5kWw/oQEMkrGiM3kwHSzaOvDAhTzWGGLbli0ovcx9Q7NsU5lVhXUVxaGY7KEw aeOmdyyCcIqfa1BGQjCrMfLEXxrwF0hdMXUegH6EExurjQBjSKCXOYlH+FOisSc7 k8Utk1N1L84q+5zdMnHHl068vQ7W+AdLV8Ek3NSENdCa8f1xbhslKC6JaadEwFVk gszlwYL5JbpF3FgkFVzZIbQzQRNmP5PYLggR08xhScAlhP+KJdy+ -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org